← Back
2026-03-26 4:18CVE-2026-33201jpcert
PUBLISHED5.2CWE-489

Digital Photo Frame GH-WDF10A provided by GREEN HOUSE CO., LTD. contains an active debug code vulnerability. If this vulnerability is exploited, files or configurations on the affected device may be read or written, or arbitrary files may be executed with root privileges.

Problem type

Affected products

GREEN HOUSE CO., LTD.

Digital Photo Frame GH-WDF10A

all versions - AFFECTED

References

green-house.co.jp

https://www.green-house.co.jp/note/info_gh-wdf10a/

jvn.jp

https://jvn.jp/en/jp/JVN18035227/

JSON source

https://cveawg.mitre.org/api/cve/CVE-2026-33201
Click to expand
{
  "dataType": "CVE_RECORD",
  "dataVersion": "5.2",
  "cveMetadata": {
    "cveId": "CVE-2026-33201",
    "assignerOrgId": "ede6fdc4-6654-4307-a26d-3331c018e2ce",
    "assignerShortName": "jpcert",
    "dateUpdated": "2026-03-26T13:55:23.959Z",
    "dateReserved": "2026-03-17T23:23:26.571Z",
    "datePublished": "2026-03-26T04:18:57.635Z",
    "state": "PUBLISHED"
  },
  "containers": {
    "cna": {
      "providerMetadata": {
        "orgId": "ede6fdc4-6654-4307-a26d-3331c018e2ce",
        "shortName": "jpcert",
        "dateUpdated": "2026-03-26T04:18:57.635Z"
      },
      "descriptions": [
        {
          "lang": "en",
          "value": "Digital Photo Frame GH-WDF10A provided by GREEN HOUSE CO., LTD. contains an active debug code vulnerability. If this vulnerability is exploited, files or configurations on the affected device may be read or written, or arbitrary files may be executed with root privileges."
        }
      ],
      "affected": [
        {
          "vendor": "GREEN HOUSE CO., LTD.",
          "product": "Digital Photo Frame GH-WDF10A",
          "versions": [
            {
              "version": "all versions",
              "status": "affected"
            }
          ]
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "lang": "en-US",
              "description": "Active debug code",
              "cweId": "CWE-489",
              "type": "CWE"
            }
          ]
        }
      ],
      "references": [
        {
          "url": "https://www.green-house.co.jp/note/info_gh-wdf10a/"
        },
        {
          "url": "https://jvn.jp/en/jp/JVN18035227/"
        }
      ],
      "metrics": [
        {
          "format": "CVSS",
          "scenarios": [
            {
              "lang": "en-US",
              "value": "GENERAL"
            }
          ],
          "cvssV3_0": {
            "version": "3.0",
            "vectorString": "CVSS:3.0/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "baseScore": 6.8,
            "baseSeverity": "MEDIUM"
          }
        },
        {
          "format": "CVSS",
          "scenarios": [
            {
              "lang": "en-US",
              "value": "GENERAL"
            }
          ]
        }
      ]
    },
    "adp": [
      {
        "providerMetadata": {
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP",
          "dateUpdated": "2026-03-26T13:55:23.959Z"
        },
        "title": "CISA ADP Vulnrichment",
        "metrics": [
          {}
        ]
      }
    ]
  }
}